[lug] amanda and iptables

Nick Golder purenrg at hiveportal.net
Mon Jan 19 22:12:20 MST 2004

On 2004-01-19 13:58 -0700, MATSUI Nobuki wrote:
> I am using a narc to generate iptables rules and I have the rules below in
> /etc/narc/narc-custom.conf to allow an amanda server to communicate with
> a local client.  The problem is that even though those rules are being
> applied (checked with iptables -L), they don't produce a desired effect.
> Amanda's known to use random higher ports and that's why I have 'RELATED'
> in my rules.  amcheck works fine though.  Could anybody help?
> best,
> /sbin/iptables -A INPUT -p tcp -s xxx.xxx.xxx.xxx -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
> /sbin/iptables -A INPUT -p udp -s xxx.xxx.xxx.xxx -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT

Don't know if this would help or not:
<snip from kernel config>

If you are running the Amanda backup package (http://www.amanda.org/)
on this machine or machines that will be MASQUERADED through this
machine, then you may want to enable this feature.  This allows the
connection tracking and natting code to allow the sub-channels that
Amanda requires for communication of the backup data, messages and

If you want to compile it as a module, say M here and read
Documentation/modules.txt.  If unsure, say `N'.

-Nick Golder

More information about the LUG mailing list